AVG-304

Package chromium
Status Fixed
Severity High
Type multiple issues
Affected 59.0.3071.86-1
Fixed 59.0.3071.104-1
Current 67.0.3396.87-2 [extra]
Ticket None
Created Sat Jun 17 11:06:49 2017
Issue Severity Remote Type Description
CVE-2017-5089 Medium Yes Content spoofing
A domain spoofing vulnerability has been found in the Omnibox component of the Chromium browser < 59.0.3071.104.
CVE-2017-5088 High Yes Information disclosure
An out-of-bounds read vulnerability has been found in the V8 component of the Chromium browser < 59.0.3071.104.
CVE-2017-5087 High Yes Sandbox escape
A sandbox escape vulnerability has been found in the IndexedDB component of the Chromium browser < 59.0.3071.104.
Date Advisory Package Description
17 Jun 2017 ASA-201706-21 chromium multiple issues
References
https://chromereleases.googleblog.com/2017/06/stable-channel-update-for-desktop_15.html